Knowledge Base¶
Welcome to the public technical knowledge base. This repository is a curated collection of evergreen technical knowledge, product & stack research, deep-dive documentation, unbiased platform comparisons, and tool catalogues.
Domains¶
| Domain | Topics | Description |
|---|---|---|
| AI Agents | OpenClaw, Hermes Agent, LLM Fundamentals | Personal AI agents, self-improving assistants, multi-channel gateways, LLM internals |
| APIs | Web Services | REST, GraphQL, gRPC, WebSocket, AsyncAPI, BFF patterns, gateways |
| CI/CD | ArgoCD, FluxCD | Pipeline definitions, GitOps, automated deployments |
| Databases | CockroachDB, MySQL, PostgreSQL | Relational engines, replication, distributed SQL |
| IaC | OpenTofu, Pulumi, Terraform | Infrastructure as Code provisioning |
| Infrastructure | Kubernetes, Docker, OpenStack, OpenNebula, AWS, GCP, Alibaba Cloud, Tencent Cloud, Multi-Cloud Governance | Container runtimes, VM orchestrators, public clouds, bare-metal |
| Messaging | Kafka, NATS, RabbitMQ, Redpanda, Pulsar | Event streaming, message queues, pub/sub systems |
| Networking | Calico, Cilium, Flannel | CNI plugins, network policies, eBPF |
| Observability | Grafana, LGTM, VictoriaMetrics, Coroot, Monoscope, OpenObserve, SigNoz, SkyWalking | Telemetry, TSDBs, log aggregators, distributed tracing |
| Secrets | External Secrets Operator, SOPS, HashiCorp Vault, Zitadel | Secrets management and encryption |
| Service Mesh | Envoy Gateway, Istio, Linkerd | Sidecar proxies, traffic management, mTLS |
| Storage | Ceph, Longhorn, MinIO | Distributed storage, block/object/file |
| Tools Catalogue | 408 tools across 26 categories | Categorized inventory of AI/LLM, infrastructure, security, and developer tools |
Featured Architecture & Reviews¶
Observability¶
- Grafana Ecosystem — The de facto visualization & observability layer
- LGTM Stack — A unified, comprehensive telemetry stack (Loki, Grafana, Tempo, Mimir, Pyroscope)
- VictoriaMetrics — Ultra-lean, high-performance time-series database
- Coroot — eBPF-powered automated APM with zero-instrumentation service maps
- SkyWalking — Apache APM with eBPF Rover and Java agent ecosystem
- SigNoz — OpenTelemetry-native all-in-one observability with ClickHouse backend
- OpenObserve — Petabyte-scale logs/metrics/traces on object storage
- Monoscope — Lightweight unified observability for self-hosted stacks
Infrastructure¶
- Kubernetes — The industry standard container orchestration engine
- Docker — Container runtime and multi-service development suite
- OpenStack — Highly customizable, open-source cloud infrastructure stack
- OpenNebula — Lightweight, VM-based edge and infrastructure management platform
- AWS — Largest public cloud — compute, storage, networking, managed services
- GCP — Google Cloud Platform — data, ML, and Kubernetes-native services
- Alibaba Cloud — China's leading cloud — international-region equivalents to AWS
- Tencent Cloud — Tencent's cloud — gaming, video, and SE Asia presence
- Multi-Cloud Governance — Policy, cost, and identity across providers
Databases¶
- PostgreSQL — The most advanced open-source relational database
- CockroachDB — Distributed SQL for global transactional workloads
- MySQL — Ubiquitous relational database powering the web
Messaging¶
- Apache Kafka — The de facto standard event streaming platform
- NATS — Ultra-light multi-tenant messaging with edge-first design
- RabbitMQ — Mature AMQP broker with quorum queues and streams
- Redpanda — Kafka-API compatible C++ broker with no JVM
- Apache Pulsar — Segregated compute/storage with built-in geo-replication
IaC¶
- OpenTofu — CNCF fork of Terraform with native state encryption
- Terraform — Industry-standard IaC with the largest provider ecosystem
- Pulumi — IaC using general-purpose programming languages
Networking¶
- Cilium — eBPF-based CNI for advanced network observability and security
- Calico — Flexible CNI with BGP peering and network policy enforcement
- Flannel — Simple overlay CNI optimized for ease of operation
Service Mesh¶
- Istio — Full-featured mesh with Envoy sidecars and ambient mode
- Linkerd — Rust-based ultra-light mesh focused on simplicity and performance
- Envoy Gateway — Kubernetes Gateway API implementation built on Envoy
Secrets¶
- HashiCorp Vault — Industry-standard secrets engine with dynamic credential leasing
- Zitadel — Self-hosted IAM with OIDC, SAML, and per-tenant isolation
- External Secrets Operator — Sync external secret stores into Kubernetes
- SOPS — Encrypt files in-place with KMS, GPG, age, and other backends
CI/CD¶
- ArgoCD — GitOps controller with rich UI and ApplicationSet patterns
- FluxCD — Lightweight, GitOps-native continuous delivery for Kubernetes
APIs¶
- Web Services — Comprehensive guide to REST, GraphQL, gRPC, WebSocket, and AsyncAPI patterns
AI Agents¶
- OpenClaw — Universal CLI agent with skills, MCP servers, and channel routing
- Hermes Agent — Self-improving agent with reflection loops and Pi runtime
- LLM Fundamentals — Architecture, training, inference, and tuning fundamentals
Storage¶
- Ceph — Unified distributed storage (block, object, file) at scale
- MinIO — High-performance S3-compatible object storage
- Longhorn — Cloud-native distributed block storage for Kubernetes
Reference Policy¶
- Distilled Context over Duplication: We prefer synthesized, critical operational insights over raw documentation dumps. Official documentation serves as the ultimate source of truth.
- Unbiased Comparisons: Choices are tracked through dedicated neutral comparison pages allowing a fair contrast of architectural trade-offs.
Topic Shape¶
Each major technology follows the Standard Topic Folder Shape (3-5 files):
- index.md — folder hub with summary, evaluation, sources, and questions (>= 80 lines)
- architecture.md — component breakdown, Mermaid diagrams, how-it-works internals, and benchmarks (>= 150 lines)
- operations.md — ops guide, best practices, tuning, and commands & recipes (>= 100 lines)
- security.md — identity flow, threat model, access control (>= 80 lines)
How to Navigate¶
- By domain: Pick a domain from the table above to browse all evaluated technologies
- By comparison: Each domain has a
comparisons/folder with neutral, side-by-side evaluations - By tool catalogue: The Tools Catalogue provides a categorized inventory of 408 tools across 26 categories
- Cross-cutting patterns: Topics like multi-cloud governance, landing zones, and GitOps span multiple domains — follow the wikilinks to trace connections
Contributing¶
This knowledge base follows the Standard Topic Folder Shape with consistent conventions, placement rules, and metadata guidance across all domains.